This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft File: 41820333252DF92B1DBA238F558CC8D822C768EF.mft (raw, json) Hash identifier: MZ1YEbqxrzrQtJWD3NQX+M+bV+kFOyQXf+Gy8fXccaQ= Subject key identifier: 2B:EC:73:7B:A3:64:E1:3B:8E:49:D7:3E:11:96:91:A4:1A:BA:5A:C6 Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 64E83322F5AAECC8C4BE0F65C872CE9F66615EC6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft Manifest number: 01C9 Signing time: Fri 05 Dec 2025 04:11:16 +0000 Manifest this update: Fri 05 Dec 2025 04:06:16 +0000 Manifest next update: Mon 08 Dec 2025 09:39:16 +0000 Files and hashes: 1: 41820333252DF92B1DBA238F558CC8D822C768EF.crl (hash: VM8LS/WB2P9mhVu6terLK7veukjqlXOSxPqRc7jZ1VE=) 2: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (hash: uQsxGbefiEsVtpCcyhbMnpmwezO+DzoY1mF96tzo5Pg=) 3: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (hash: RVo6qspo0NsN9BxZrHPSAeKSfxIe7qLdXa5VG0+wvkA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 09:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e8:33:22:f5:aa:ec:c8:c4:be:0f:65:c8:72:ce:9f:66:61:5e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Dec 5 04:06:16 2025 GMT Not After : Dec 8 09:39:16 2025 GMT Subject: CN=2BEC737BA364E13B8E49D73E119691A41ABA5AC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:25:34:75:54:ff:52:f3:26:53:ef:bd:28:f9: 07:22:89:21:2b:1c:3a:a9:7a:4e:62:af:8c:16:bd: 4a:b0:6d:e0:b2:2c:56:f6:ba:e9:28:d1:ed:37:c7: 0e:6c:8c:c9:9b:92:ae:f3:2f:db:89:23:8f:9a:99: aa:5b:b1:9a:91:ea:62:47:cf:6e:75:17:c9:22:6f: 1b:a0:a7:4a:ad:76:b9:84:dc:3f:97:a2:5e:4e:5c: 4d:7a:e0:62:0a:6b:66:65:2c:d9:ad:76:fb:54:c7: 9e:e7:a9:bf:ff:ba:10:2b:dd:0d:a7:12:3a:84:cd: 72:c1:a0:9b:15:db:63:fb:a7:24:82:b0:19:77:72: 46:6b:23:25:c0:b4:5d:53:8a:1a:43:7f:0e:02:d1: e5:b8:c1:fa:ec:63:2a:3e:d2:32:0a:b7:52:33:57: 69:d5:6c:94:1c:f6:45:68:58:1d:79:a7:68:ab:d2: bd:b8:fb:24:b1:a6:0d:5e:8e:2f:3d:7b:14:5c:55: e5:35:48:36:05:ed:c4:f0:1b:a1:e7:c9:f0:f1:05: 03:11:69:0a:49:5a:43:84:f4:87:96:1f:2a:31:11: 62:c1:56:8e:41:f1:0a:87:47:1d:0a:70:93:8a:d0: e5:95:cf:37:f5:07:90:1c:55:36:da:e8:1d:10:f3: e0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EC:73:7B:A3:64:E1:3B:8E:49:D7:3E:11:96:91:A4:1A:BA:5A:C6 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:1e:fd:60:46:08:ac:63:f4:1e:04:b5:5f:66:7e:1a:70:af: 27:a3:45:ab:b8:aa:bb:c8:8c:01:ea:b1:a2:70:71:79:66:e2: a9:e6:5c:7b:d6:1b:fd:3c:0f:36:1c:89:f1:15:9d:05:da:3c: de:0e:a7:6f:af:c8:0f:11:f8:65:cf:43:4e:f1:c6:f2:29:e9: 40:2c:e3:f5:fc:f9:2c:c1:66:b0:a2:5c:6e:db:1f:75:a6:b7: 55:ef:d2:97:5c:68:a4:d6:f0:a9:e8:d1:f5:74:3c:0a:eb:d9: d0:aa:83:48:35:53:cc:2a:46:15:db:2a:9b:e0:44:24:e5:df: 16:a1:b8:5f:c4:7f:29:57:9f:fc:b3:bf:56:e9:65:18:e0:43: 13:6e:e3:0a:f3:fb:37:49:ec:06:19:a4:65:7a:45:ae:ac:8a: 08:4c:68:5d:77:93:90:8c:1a:d8:8d:67:7e:6f:9f:80:fc:b4: 0f:f3:27:da:c8:fe:60:12:4d:5b:4f:d3:b3:da:b7:69:1c:64: 03:78:e4:11:ed:e5:6e:d9:d2:1a:dc:3c:8b:98:ab:ce:75:86: 79:df:c2:24:5d:65:11:6a:1d:8a:cc:8b:6b:8f:d4:5b:10:19: a4:77:8f:d7:d0:85:ad:3f:80:a5:2d:d7:d5:b4:5b:f6:1b:ef: b3:31:53:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZOgzIvWq7MjEvg9lyHLOn2ZhXsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNTEyMDUwNDA2MTZaFw0yNTEyMDgwOTM5MTZaMDMxMTAvBgNV BAMTKDJCRUM3MzdCQTM2NEUxM0I4RTQ5RDczRTExOTY5MUE0MUFCQTVBQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJTR1VP9S8yZT770o+QciiSEr HDqpek5ir4wWvUqwbeCyLFb2uuko0e03xw5sjMmbkq7zL9uJI4+amapbsZqR6mJH z251F8kibxugp0qtdrmE3D+Xol5OXE164GIKa2ZlLNmtdvtUx57nqb//uhAr3Q2n EjqEzXLBoJsV22P7pySCsBl3ckZrIyXAtF1TihpDfw4C0eW4wfrsYyo+0jIKt1Iz V2nVbJQc9kVoWB15p2ir0r24+ySxpg1eji89exRcVeU1SDYF7cTwG6HnyfDxBQMR aQpJWkOE9IeWHyoxEWLBVo5B8QqHRx0KcJOK0OWVzzf1B5AcVTba6B0Q8+BpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUK+xze6Nk4TuOSdc+EZaRpBq6WsYwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODU5NzFhZTktNWNkZC00ZDQxLWI2 MmEtNWMyODRhYTgwOThlLzAvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4 RDgyMkM3NjhFRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADwe/WBGCKxj9B4EtV9mfhpwryejRau4qrvI jAHqsaJwcXlm4qnmXHvWG/08DzYcifEVnQXaPN4Op2+vyA8R+GXPQ07xxvIp6UAs 4/X8+SzBZrCiXG7bH3Wmt1Xv0pdcaKTW8Kno0fV0PArr2dCqg0g1U8wqRhXbKpvg RCTl3xahuF/EfylXn/yzv1bpZRjgQxNu4wrz+zdJ7AYZpGV6Ra6sighMaF13k5CM GtiNZ35vn4D8tA/zJ9rI/mASTVtP07Pat2kcZAN45BHt5W7Z0hrcPIuYq851hnnf wiRdZRFqHYrMi2uP1FsQGaR3j9fQha0/gKUt19W0W/Yb77MxU1g= -----END CERTIFICATE-----Generated at Sun Dec 7 03:45:13 2025 by rpki-client